Constant hack attempts on AWF (1 Viewer)

Isaac

Lifelong Learner
Local time
Today, 08:49
Joined
Mar 14, 2017
Messages
8,738
Capitalism vs Socialism vs Communism comparisons, especially as you see in heightened political debates, are a waste of time because what we really see over time is a melding of the systems into hybrids. As discussed above. The United States, the Nordic region, and China are good examples of this. Each have their own flavors, of course.
Fair enough: It's a question of degree.
 

Caveman

New member
Local time
Today, 16:49
Joined
Oct 27, 2020
Messages
7
It's not personal and they are not trying to hack the forum, they are trying to hack the web server it runs on. They don't hand pick targets, they use automated tools that scan many many IP's for one specific vulnerability or a set of vulnerabilities. Wordpress is popular, because many unpatched modules have issues. Only after finding an outdated module it becomes manual labor, they can leverage it to get a shell on the server.
 

zeroaccess

Active member
Local time
Today, 10:49
Joined
Jan 30, 2020
Messages
671
It's not personal and they are not trying to hack the forum, they are trying to hack the web server it runs on. They don't hand pick targets, they use automated tools that scan many many IP's for one specific vulnerability or a set of vulnerabilities. Wordpress is popular, because many unpatched modules have issues. Only after finding an outdated module it becomes manual labor, they can leverage it to get a shell on the server.
You seem to know a lot about this. :unsure:
 

The_Doc_Man

Immoderate Moderator
Staff member
Local time
Today, 10:49
Joined
Feb 28, 2001
Messages
26,999
Actually, that was an option being offered by the Navy for our advanced certifications.
 

neuroman9999

Member
Local time
Today, 10:49
Joined
Aug 17, 2020
Messages
827
I like to expand my horizon, so I'm training to become OSCP (a certification for penetration testers/ ethical hackers), so I know some things yes.
ethical hacker!? you want a start? find this code behind Jon's pages:
Code:
forums/js/xf/preamble.min.js?
I guarantee you there's a secret in it. ;)
 

neuroman9999

Member
Local time
Today, 10:49
Joined
Aug 17, 2020
Messages
827
ummmmm.....@Ismailmrabet?? you need to post that in a technical section here. thanks.
 

The_Doc_Man

Immoderate Moderator
Staff member
Local time
Today, 10:49
Joined
Feb 28, 2001
Messages
26,999
Adam, the post to which you refer has been moved to Modules and VBA.
 

neuroman9999

Member
Local time
Today, 10:49
Joined
Aug 17, 2020
Messages
827
Adam, the post to which you refer has been moved to Modules and VBA.
I wasn't telling you how to do your job. you were just asleep when I caught it. but that's nothing new under the sun, is it Richard? :p

therefore stay awake, for the son of man is coming at an hour you do not expect

- Jesus Christ
 

The_Doc_Man

Immoderate Moderator
Staff member
Local time
Today, 10:49
Joined
Feb 28, 2001
Messages
26,999
Sheesh, Adam, I'm not the ONLY moderator on the forum. And I wasn't asleep. I was having breakfast and reading the newspaper, if you are going to make a "thing" of it.
 

The_Doc_Man

Immoderate Moderator
Staff member
Local time
Today, 10:49
Joined
Feb 28, 2001
Messages
26,999
A reference to "your age is showing" is totally inappropriate and not at all appreciated. I have addressed that many times.
 

neuroman9999

Member
Local time
Today, 10:49
Joined
Aug 17, 2020
Messages
827
Just given a little day or two's holiday to someone.
I figured that was your doing! considering that there was no "reason" given on the ban notification page. by the way Jon, why haven't you responded to my PM about paying you a visit in person?
 

Jon

Access World Site Owner
Staff member
Local time
Today, 15:49
Joined
Sep 28, 1999
Messages
7,304
I've spent all day on security issues for my various websites, finding hacked WordPress installations all over the place. To give you an idea of the number of failed hack attempts on this site, just take a look below:

1613568905113.png


That's like 15 hack attemps in a couple of minutes. It works out at over 10,000 hack attempts per day. Astonishing!
 

Isaac

Lifelong Learner
Local time
Today, 08:49
Joined
Mar 14, 2017
Messages
8,738
That's too bad, Jon. Sorry the site comes under such continual adversity. I hope you are lucky & successful in your efforts at identifying and safekeeping
 

Minty

AWF VIP
Local time
Today, 15:49
Joined
Jul 26, 2013
Messages
10,354
I think it's predominately bots, and if you have an online presence, it's inevitable.

When I used to run a mail server at home the anti-spam and spam catchers would frequently deal with 10,000's of "events" on a daily basis.
My domain was purely privately run for my own use, and I had one mailing list on it subscribed to by 20 people. Hardly ibm.com

One of the simplest and most effective features was to delay the response to a HELO request by about 30 seconds. Most bots and spam malware would only wait for about 10 seconds and give up. Any legitimate host would wait for about 60 seconds.
I remember seeing about a 70% success rate in that one feature removing rubbish connect attempts.
 

Jon

Access World Site Owner
Staff member
Local time
Today, 15:49
Joined
Sep 28, 1999
Messages
7,304
According to the scanner, they are mostly not bots:

1613579041837.png


Edit: My personal view is that these are likely to be bots, even though it says Human. Why? Because they are all trying to log in with either admin or access-programmers as the username.
 
Last edited:

vhung

Member
Local time
Today, 08:49
Joined
Jul 8, 2020
Messages
235
Hacker names were trace down. Therefore, they are human.
Maybe they set an automated program that runs over the Internet.
Alternatively, bots run automatically, while others only execute commands when they receive specific input.
 

Users who are viewing this thread

Top Bottom